•   
  •   

Tech & Science Leaked report describes Federal Parliament's cyber security as having 'low level of maturity'

21:45  12 february  2020
21:45  12 february  2020 Source:   abc.net.au

NSW Premier Gladys Berejiklian urged to call for logging moratorium to save koalas in leaked letter

  NSW Premier Gladys Berejiklian urged to call for logging moratorium to save koalas in leaked letter Committee members from a NSW Upper House inquiry into koala populations were consulted on a letter asking the Premier to put a halt on salvage logging to allow koalas to recover from bushfires.The emergence of the letter asking Ms Berejiklian to put a hold on salvage logging comes after it emerged 40 koalas died in Victoria after trees were cleared.

a large white building: A leaked report describes cyber security at the Department of Parliamentary Services as © Provided by ABC NEWS A leaked report describes cyber security at the Department of Parliamentary Services as "ad hoc". (ABC News)

Federal Parliament failed to develop effective methods for preventing cyber intrusions and did not regularly update some sensitive information systems, according to a draft internal audit dated three months after a major cyber attack was uncovered.

7.30 can reveal that a scathing internal audit report written by KPMG for the Department of Parliamentary Services concluded the agency had an "ad hoc" approach to all elements of information security management, the lowest rating possible under the scoring metric used.

Delivery giant Toll Group hit by ransomware attack, leaving small business owners frustrated over “untraceable” parcels

  Delivery giant Toll Group hit by ransomware attack, leaving small business owners frustrated over “untraceable” parcels Angry business owners are venting their frustration with delivery giant Toll Group after a ransomware attack compromised its operations.Reports began emerging late last week that Toll was experiencing outages and delays, complaints which were subsequently confirmed on Monday when the shipping company said it was in damage control after experiencing a “cyber security incident”.

The findings of the draft report, titled the Protective Services Protective Framework (PSPF) Alignment Review, indicate that at one point the department's contracted review team considered Parliament may have been more vulnerable than was previously known.

The department has overall responsibility for cyber security in Parliament, including the electoral and Commonwealth offices of MPs and Senators. The network it is responsible for includes over 5,000 users, 5,000 PCs and laptops, 1,000 servers and more than 2,000 mobile devices.

The emergence of the draft report is likely to raise further concerns about the severity of a major cyber attack in February 2019 that breached Australia's parliamentary network and also separately targeted the major political parties.

Thai mall shooting survivors tracked killer via CCTV

  Thai mall shooting survivors tracked killer via CCTV Thai mall shooting survivors tracked killer via CCTVIn a fourth floor toilet of the Terminal 21 mall shoppers jammed cubicle doors against the entrance to keep out a Thai soldier on a shooting spree, tracing his movements through fragments of CCTV passed on by friends on the outside.

Critically, the draft review found that "Essential Eight strategies and other methods to prevent cyber intrusions are at a low level of maturity".

"Essential Eight strategies" are key pillars of cyber security management established by the Australian Signals Directorate that all government agencies are expected to comply with.

A spokeswoman for the Department of Parliamentary Services told 7.30 that: "The confidential working draft KPMG PSPF Alignment Review to which you refer does not reflect the true state of the department's PSPF maturity."

'Lack of an overarching approach'

The draft report also found significant deficiencies in the management of key systems that hold potentially classified information.

"Some information systems are not regularly patched due to the legacy nature of their systems," it said.

In relation to how the agency handles classified and sensitive information, the draft report said that "critical information assets have not been identified".

Cynch Security clinches government funding to tackle small business cyber challenges

  Cynch Security clinches government funding to tackle small business cyber challenges Cynch Security has secured just over $200,000 in government and matched funding, for a project mapping cyber challenges for small business.The funding is made up of $109,969 from the AustCyber Projects Fund for backing industry-led projects, matched with $100,000 from industry.

Physical security of computer assets also remains a significant issue. The draft report noted that "DPS security branch is unable to identify all critical assets within APH".

It also added that "no security zones within DPS' remit have undergone formal zone certification or accreditation".

Overall it found that "a large contributing factor to the low maturity for the department is the lack of an overarching approach defined for protective security management and security risk management processes".

"Up until now, the Department has had a responsive approach to protective security management, rather than based on formal, documented, and integrated risk-based approach."

The findings of a "low level of maturity" suggest the department has not developed a clear framework for managing key information security protocols.

The spokeswoman for the Department of Parliamentary Services told 7.30 in a statement: "Without commenting directly on this confidential draft document, it reflects early fieldwork by KPMG and was not subject to verification by the department and does not incorporate a body of work undertaken to demonstrate that the department's PSPF maturity rating of 'managing' for the relevant criteria.

First plane carrying Americans from Japan virus ship lands in US

  First plane carrying Americans from Japan virus ship lands in US First plane carrying Americans from Japan virus ship lands in USChina has been battling an outbreak of a new SARS-like coronavirus (COVID-19), which originated in Wuhan. The virus has claimed over 1,750 lives in mainland China – surpassing the death toll during the SARS outbreak in 2003 – and infected over 70,500 people around the world. Outside mainland China, Philippines reported a death on Feb. 2, Hong Kong on Feb. 4, Japan on Feb. 14, and France and Taiwan on Feb. 15.

"The final report of the alignment review in July 2019 did not make adverse findings in relation to the department achieving an acceptable maturity rating."

She said that the program the department undertook to assess how it met the PSPF criteria showed that it achieved "a maturity rating of 'managing' against 85 of the 88 relevant PSPF criteria and 'developing' against three criteria. The department did not rate 'ad hoc' against any of these 88 criteria."

A KPMG spokesperson said: "KPMG does not comment on client work but I can confirm we were engaged by the Department of Parliamentary Services in 2019 to provide advice in relation to the Protective Security Policy Framework."

Scale of last year's cyber attack unknown

The specific circumstances surrounding the Parliament House cyber attack last year remain largely concealed from the public and questions have recently been raised over the scale and severity of the attack.

In January, former defence minister Christopher Pyne and Martin Parkinson, the former secretary of the Department of Prime Minister and Cabinet, spoke on Mr Pyne's podcast at length about cyber security in government and in the private sector.

Mr Parkinson observed how he was "amazed actually at how little concern is expressed by the public when these breaches occur".

What is the 'boogaloo?' How online calls for a violent uprising are hitting the mainstream

  What is the 'boogaloo?' How online calls for a violent uprising are hitting the mainstream The movement claims to want a second Civil War targeting liberal political opponents and law enforcement.The movement, which claims to want a second Civil War is organised around the term "Boogaloo".

He referenced a cyber attack on ANU as one example, and the attack on Parliament House as another.

Mr Pyne then responded: "You and I know how much worse it all was, which we can never talk about."

Mr Pyne told 7.30 he was referring to cyber security incidents generally, and not any specific breach.

Following the publication of Mr Pyne's comments last week, the speaker of the House of Representatives, Tony Smith, rebuked the comments and said any suggestion the public had not received the full facts was "false".

He also said: "I would just finally say the podcast also refers to a cyber intrusion at the Australian National University … so perhaps it shouldn't be inferred that the comments necessarily relate to the parliamentary network."

In a Senate estimates hearing in November, the president of the Senate, Scott Ryan, said the breach occurred when "a small number of users visited a legitimate external website that had been compromised".

This led to the injection of malware into the parliamentary computing network.

The Department of Parliamentary Services became aware of the breach on January 31, 2019. The attacker was present in their systems until February 8, 2019.

Senator Ryan had said only a small amount of non-sensitive data was taken, but he added: "While we cannot precisely guarantee that no other data was removed, extensive investigation has provided no evidence of this."

The small amount of data known to be taken from the network was described as "corporate data and data related to a small number of parliamentarians".

At least two parliamentarians have been informed that some of their data was taken.

The Department of Parliamentary Services' latest annual report says that "significant advancements have been made this year to strengthen our physical and cyber security capability".

China finds spike in coronavirus cases in jails, officials fired .
China finds spike in coronavirus cases in jails, officials firedChina has been battling an outbreak of a new SARS-like coronavirus (COVID-19), which originated in Wuhan. The virus has claimed over 2,200 lives across the world – surpassing the death toll during the SARS outbreak in 2003 – and infected more than 76,000 people around the world. Outside mainland China, Philippines reported its first fatality on Feb. 2, Hong Kong on Feb. 4, Japan on Feb. 14, France and Taiwan on Feb. 15, and South Korea on Feb. 20. On Feb. 19,  Hong Kong reported its second death and Iran reported its first two.

—   Share news in the SOC. Networks

Topical videos:

usr: 1
This is interesting!